CVE-2026-10287

HIGH WAF: Medium

CVSS 7.3 Published: 2026-06-01

CWE-918

A vulnerability was determined in SourceCodester SEO Meta Tag Extractor 1.0. This vulnerability affects the function get_headers of the file /index.php. This manipulation of the argument url causes server-side request forgery. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

WAF Coverage Analysis

Server-Side Request Forgery (SSRF) Medium WAF Coverage

OWASP: A10:2021 SSRF

934xxx - Node.js / Generic Injection

References

hackmd.io
vuldb.com
vuldb.com
vuldb.com
vuldb.com
www.sourcecodester.com

Back to CVE Database